Due to a lack of proper overall input validation, an authenticated user can inject JavaScript Cross Site Scripting payloads into fields in Quorum to create stored or reflected XSS conditions. It was observed that some basic script tags were filtered however this is easily bypassed with a slightly more diverse payload.
Cross Site Scripting (XSS)
NCH Software
Quorum 2.03 and earlier
Remote
Yes
User Display Name (stored)
Conference Description (stored)
/uploaddoc?id= (reflected)
/conference?id= (reflected)
/conferencebrowseuploadfile?confid= (reflected)